Lucene search

[email protected]CVE-2021-3229

HistoryFeb 05, 2021 - 10:15 p.m.

CVE-2021-3229

2021-02-0522:15:13

[email protected]

web.nvd.nist.gov

cve-2021-3229

asuswrt

denial of service

firmware

asus rt-ax3000

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

61.4%

JSON

Denial of service in ASUSWRT ASUS RT-AX3000 firmware versions 3.0.0.4.384_10177 and earlier versions allows an attacker to disrupt the use of device setup services via continuous login error.

Affected configurations

NVD

Node

asusrt-ax3000Match-

AND

asusrt-ax3000_firmwareRange≤3.0.0.4.384_10177

CPENameOperatorVersion
asus:rt-ax3000_firmwareasus rt-ax3000 firmwarele3.0.0.4.384_10177

CPE	Name	Operator	Version
asus:rt-ax3000_firmware	asus rt-ax3000 firmware	le	3.0.0.4.384_10177

References

dlcdnimgs.asus.com/websites/global/productcustomizedTab/562/ASUSWRT%20portal%20feature.pdf

github.com/fullbbadda1208/CVE-2021-3229

www.asus.com/us/ASUSWRT/

Social References

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

61.4%

JSON

Related for CVE-2021-3229

cvelist1 cnvd1 prion1 nvd1